News

Target: hackers breached data link used for billing

Target: hackers breached data link used for billing

TARGETED: Target, the third-largest U.S. retailer, has said the hackers stole about 40 million credit and debit card records, as well as personal information, such as addresses and phone numbers, belonging to about 70 million customers. Photo: Associated Press

By Mark Hosenball

WEDNESDAY (Reuters) – The Target Corp hackers managed to break into its payments network by first breaching a “data connection” between the U.S. retailer and its heating and ventilation systems contractor, a representative for the contractor said on Thursday.

The data connection was used by the vendor, Fazio Mechanical Services, to bill Target and exchange contract and project management information with the retailer, according to Dick Roberts, a public relations representative for Fazio.

Target, the third-largest U.S. retailer, has said the hackers stole about 40 million credit and debit card records, as well as personal information, such as addresses and phone numbers, belonging to about 70 million customers.

Target spokeswoman Molly Snyder declined on Thursday to comment on the company’s vendor relationships or to provide an update. “This is an active and ongoing investigation. I don’t have additional details to share at this time,” she said.

Last week, Target said the theft of a vendor’s credentials had helped cyber criminals pull off the massive data breach, which occurred during the holiday shopping season in late 2013. Target did not identify the vendor.

The U.S. Secret Service is investigating the Target attack, and said on Wednesday that its agents had visited the offices of Fazio Mechanical Services, based in Sharpsburg, Pennsylvania.

Fazio does not believe the hackers breached any data or data connections involving any of its other customers, Roberts said.

Ross E. Fazio, president and owner of Fazio Mechanical Services, said in a statement that his company was “fully cooperating” with Target and the Secret Service “to identify the possible cause of the breach.”

Fazio provides Target with heating, ventilation and air conditioning services, which are maintained physically. Fazio did not monitor these systems by remote control, Roberts said.

(Reporting by Mark Hosenball in Washington; Additional reporting by Phil Wahba in New York; Editing by Tiffany Wu, Toni Reinhold)

Recent Headlines

in Sports

NFL: Legal process will play role in punishments

nfl

Punishment for players implicated in domestic violence will not be imposed upon arrest but at some point "farther down the process."

in National

Ebola czar starts work, drugmakers launch vaccine drive

ebola

The Obama administration is ramping up its response to the potential spread of the virus.

in National, World

Canadian parliament attacked, soldier fatally shot

canadashooting

A gunman shot a soldier and then entered the country's parliament buildings, with at least 30 shots fired in dramatic scenes in the heart of the Canadian capital.

in National

U.S. farmers battling bugs

harvest

With record harvests depressing prices, farmers are using chemicals that protect stored grain from critters.

in National, World

Jeffrey Fowle, freed from N. Korea, back on American soil

fowle

U.S. Secretary of State John Kerry welcomed the release of one of three Americans held in North Korea.